[WEB SECURITY] Tools or software for hacking windows/iis.

Schmidt, Albert E AES at ola.state.md.us
Thu Dec 21 12:30:23 EST 2006

Hello group, I am auditing a Windows 2000 web server that has not been patched for 2 years.  I am looking for tools that could be used to exploit know vulnerabilities - I do not want to damage the server, but would like to demonstrate the security weakness for my work papers.  I have heard that there are tools such as iishack.exe that may be able to help.  I would like an easy tool, as I am not that technical.  I have a basic understanding of web application security.
Thank you,
Albert E. Schmidt, CPA
Senior Information System Auditor
Office of Legislative Audits
Department of General Services
Maryland General Assembly

The Web Security Mailing List: 

The Web Security Mailing List Archives: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

More information about the websecurity mailing list